Vulnerabilities > CVE-2005-4047 - Cross-Site Scripting vulnerability in Iisworks Aspknowledgebase 2.0

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

network

iisworks

exploit available

NVD

Published: 2005-12-07

Updated: 2011-03-08

Summary

Cross-site scripting (XSS) vulnerability in kb.asp in IISWorks ASPKnowledgeBase 2.0 allows remote attackers to inject arbitrary web script or HTML via the a parameter.

Vulnerable Configurations

Part	Description	Count
Application	Iisworks Iisworks Aspknowledgebase 2.0	1

Exploit-Db

description	IISWorks ASPKnowledgeBase 2.0 KB.ASP Cross-Site Scripting Vulnerability. CVE-2005-4047. Webapps exploit for asp platform
id	EDB-ID:26743
last seen	2016-02-03
modified	2005-12-06
published	2005-12-06
reporter	r0t
source	https://www.exploit-db.com/download/26743/
title	IISWorks ASPKnowledgeBase 2.0 KB.ASP Cross-Site Scripting Vulnerability

References

http://pridels0.blogspot.com/2005/12/iisworks-asp-knowledgebase-2x-xss-vuln.html
http://secunia.com/advisories/17901
http://www.securityfocus.com/bid/15734
http://www.vupen.com/english/advisories/2005/2762